SSL Certificate Analysis for shopyone.co - Security Grade & TLS Configuration

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=googe.cm

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

January 20, 2026

Valid Until

April 20, 2026 66 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

8C:26:E0:1C:52:0F:93:E1:8B:18:B9:77:E0:BE:85:31:C0:1F:B8:5B:11:02:4E:90:5F:1B:9E:8F:0C:F0:72:4C

Alternative Names

82 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

82 domains

shopyone.co *.shopyone.co *.construccionlivianasteelframe.shopyone.co *.guiasdemanejo.shopyone.co *.maxiface.shopyone.co *.shopypet.shopyone.co *.steel-frames.shopyone.co *.steelframecolombia.shopyone.co

Other domains in certificate

24myfashion.com *.24myfashion.com *.prod1.24myfashion.com *.prod2.24myfashion.com *.prod3.24myfashion.com

acegaming888b.com *.acegaming888b.com *.ww38.acegaming888b.com

cairnsflowers.com.au *.cairnsflowers.com.au *.ww84.cairnsflowers.com.au

*.4jslg.buf.com.pl buf.com.pl *.buf.com.pl *.citrix.buf.com.pl *.webmail.buf.com.pl

*.ai.fidelisgroup.au *.demo.fidelisgroup.au fidelisgroup.au *.fidelisgroup.au *.hosting.fidelisgroup.au

*.classroom.googe.cm googe.cm *.googe.cm *.meet.googe.cm

henmheexxx.com *.henmheexxx.com *.www.henmheexxx.com

hmanche.com *.hmanche.com *.prod2.hmanche.com *.prod3.hmanche.com

*.dachdeckerei-schmigreek.hublaagram.com hublaagram.com *.hublaagram.com *.ww38.hublaagram.com

*.air.iqq1.website *.hmall.iqq1.website iqq1.website *.iqq1.website

*.app.juwahub.net *.club.juwahub.net *.com.juwahub.net juwahub.net *.juwahub.net *.net.juwahub.net *.vip.juwahub.net

*.cms.komsven.com komsven.com *.komsven.com

*.cloud.microsofoffice.com *.login.microsofoffice.com microsofoffice.com *.microsofoffice.com

*.dev.oldbarn.uk oldbarn.uk *.oldbarn.uk

showmepromocodesforamazon.com *.showmepromocodesforamazon.com *.ww25.showmepromocodesforamazon.com *.ww38.showmepromocodesforamazon.com

*.acidboxmusic.skinrecovery.co.uk *.codedsoundrecordings.skinrecovery.co.uk *.cpanel.skinrecovery.co.uk *.gmvnyww16.skinrecovery.co.uk *.pmesrfmybluehostme.skinrecovery.co.uk skinrecovery.co.uk *.skinrecovery.co.uk *.website-3c193153.skinrecovery.co.uk

*.dl1.uploader.pw uploader.pw *.uploader.pw

yessbaby.be *.yessbaby.be